15 matches found
CVE-2024-32369
SQL Injection vulnerability in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the start and limit parameter in the mliWhiteList.php component...
CVE-2024-32370
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the id parameter in the mliSystemUsers.php component...
CVE-2024-32371
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a regular user account to escalate their privileges and gain administrative access by changing the type parameter from 1 to 0...
CVE-2024-32370
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the id parameter in the mliSystemUsers.php component...
CVE-2024-32371
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a regular user account to escalate their privileges and gain administrative access by changing the type parameter from 1 to 0...
CVE-2024-32369
The CVE-2024-32369 entry documents a SQL Injection vulnerability in HSC Cybersecurity HC Mailinspector, specifically affecting versions 5.2.17-3 through 5.2.18. The vulnerability targets the mliWhiteList.php component, with exploitation via crafted payloads in the start and limit parameters, enab...
CVE-2024-32370
The issue affects HSC Cybersecurity HC Mailinspector versions 5.2.17-3 through 5.2.18. A remote attacker can obtain sensitive information by sending a crafted payload to the id parameter in the mliSystemUsers.php component, indicating an information disclosure vulnerability stemming from the hand...
CVE-2024-32371
Summary: CVE-2024-32371 affects HSC Cybersecurity HC Mailinspector (versions 5.2.17-3 through 5.2.18). The issue allows a regular user to escalate privileges to administrative access by changing the type parameter from 1 to 0, indicating a privilege escalation flaw in the affected component. What...
CVE-2024-32369
SQL Injection vulnerability in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the start and limit parameter in the mliWhiteList.php component...
CVE-2024-32370
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the id parameter in the mliSystemUsers.php component...
CVE-2024-32371
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a regular user account to escalate their privileges and gain administrative access by changing the type parameter from 1 to 0...
CVE-2024-32371
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a regular user account to escalate their privileges and gain administrative access by changing the type parameter from 1 to 0...
CVE-2024-32369
SQL Injection vulnerability in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the start and limit parameter in the mliWhiteList.php component...
CVE-2024-32370
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the id parameter in the mliSystemUsers.php component...
HSC Cybersecurity HC Mailinspector 路径遍历漏洞
HSC Cybersecurity HC Mailinspector is a cloud email security solution from HSC Cybersecurity. A path traversal vulnerability exists in HSC Cybersecurity HC Mailinspector versions 5.2.17-3 through v.5.2.18, which stems from an unauthenticated path traversal vulnerability in mliRealtimeEmails.php,...